CVE-2022-26174

A remote code execution RCE vulnerability in Beekeeper Studio v3.2.0 allows attackers to execute arbitrary code via a crafted payload injected into the display fields...

EUVD-2022-46189

Malicious code in bioql PyPI...

EUVD-2022-30740

Malicious code in bioql PyPI...

EUVD-2023-32090

Malicious code in bioql PyPI...

CVE-2024-23995

Cross Site Scripting XSS in Beekeeper Studio 4.1.13 and earlier allows remote attackers to execute arbitrary code in the column name of a database table in tabulator-popup-container...

CVE-2023-28394

Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed. As a result, an arbitrary OS command may be executed as well...

CVE-2022-43143

A cross-site scripting XSS vulnerability in Beekeeper Studio v3.6.6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the error modal container...

Exploit for CVE-2024-23995

Beekeeper-Studio PoC A Proof-Of-Concept for CVE-2024-23995 vul...

CVE-2024-23995

Beekeeper Studio is affected by CVE-2024-23995: an XSS flaw in the tabulator-popup-container allows remote attackers to execute arbitrary code via the column name of a database table. Affected versions are 4.1.13 and earlier. Multiple connected sources (Red Hat CVE entry and associated exploit/po...

CVE-2024-23995

Cross Site Scripting XSS in Beekeeper Studio 4.1.13 and earlier allows remote attackers to execute arbitrary code in the column name of a database table in tabulator-popup-container...

Beekeeper Studio 安全漏洞

Beekeeper Studio is a cross-platform, open source SQL editor and database manager from Beekeeper Studio, Inc. It is available for Linux, Mac and Windows. A security vulnerability exists in Beekeeper Studio version 4.1.13 and prior versions. A remote attacker can exploit this vulnerability to...

PT-2024-20223 · Unknown · Beekeeper Studio

Name of the Vulnerable Software and Affected Versions: Beekeeper Studio versions 4.1.13 and earlier Description: The issue allows remote attackers to execute arbitrary code in the column name of a database table in tabulator-popup-container. This is a Cross Site Scripting XSS issue...

CVE-2024-23995

Cross Site Scripting XSS in Beekeeper Studio 4.1.13 and earlier allows remote attackers to execute arbitrary code in the column name of a database table in tabulator-popup-container...

CVE-2023-28394

Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed. As a result, an arbitrary OS command may be executed as well...

CVE-2023-28394

Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed. As a result, an arbitrary OS command may be executed as well...

CVE-2023-28394

Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed. As a result, an arbitrary OS command may be executed as well...

PT-2023-21691 · Unknown · Beekeeper Studio

Name of the Vulnerable Software and Affected Versions: Beekeeper Studio versions prior to 3.9.9 Description: The issue allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed, potentially...

CVE-2023-28394

Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed. As a result, an arbitrary OS command may be executed as well...

CVE-2023-28394

Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed. As a result, an arbitrary OS command may be executed as well...

CVE-2023-28394

Beekeeper Studio is affected in versions prior to 3.9.9 by a code-injection vulnerability that allows a remote authenticated attacker to execute arbitrary JavaScript code with the app’s privileges, potentially enabling arbitrary OS commands on the host. Root cause: untrusted JavaScript execution ...